[Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore
Esko Dijk <esko.dijk@iotconsultancy.nl> Wed, 22 October 2025 11:24 UTC
Return-Path: <esko.dijk@iotconsultancy.nl>
X-Original-To: ace@mail2.ietf.org
Delivered-To: ace@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 58B817A3F85B for <ace@mail2.ietf.org>; Wed, 22 Oct 2025 04:24:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=iotconsultancy.nl
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4v8tt0atjpYD for <ace@mail2.ietf.org>; Wed, 22 Oct 2025 04:24:53 -0700 (PDT)
Received: from dane.soverin.net (dane.soverin.net [IPv6:2a10:de80:1:4091:b9e9:220b:0:1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 4B27E7A3F854 for <ace@ietf.org>; Wed, 22 Oct 2025 04:24:53 -0700 (PDT)
Received: from smtp.soverin.net (unknown [10.10.4.74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (No client certificate requested) by dane.soverin.net (Postfix) with ESMTPS id 4cs6Jg3h06z1L4P; Wed, 22 Oct 2025 11:24:51 +0000 (UTC)
Received: from smtp.soverin.net (smtp.soverin.net [10.10.4.99]) by soverin.net (Postfix) with ESMTPSA id 4cs6Jg0VKczq7; Wed, 22 Oct 2025 11:24:51 +0000 (UTC)
Authentication-Results: smtp.soverin.net; dkim=pass (2048-bit key; unprotected) header.d=iotconsultancy.nl header.i=@iotconsultancy.nl header.a=rsa-sha256 header.s=soverin1 header.b=Ln7J3Sxi; dkim-atps=neutral
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iotconsultancy.nl; s=soverin1; t=1761132291; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type; bh=/iGNVaIBOI0/Ws1nE38VU3S280c6ENPAysJ/FN79Vvg=; b=Ln7J3Sxi0t6KSz/3hBng8hmGF0aKglgQjagc42vgYpSScXfVde0O2M9lBBMrWXcWTY7nZt N6yWhMzA5YV29Ox6hbrhH1LXtDbfcA7YaVVjgyDOndj+CVgstuL4Yr5yLPlkrTWP/LMW4x cmRDmXjCQgYk7ekywMG09wwpby3Yl6gEVh9eMtqcjeHiIvu3fa3CJY3jujNJ0Pe4hHAkL8 Xu38loizXmWlhR78dFd5ow7kugDjxMR02IEkDlEFqLlqdN0Xfchi4+Bs/A9pF3Gn13gj/e g9+iIAb7O6ftVvPKnNhUxq0OR1K82yTqpdOa+83gE6nQEgdJ/75IO2HGLQtlMw==
X-CM-Envelope: MS4xfDQ5KVYuW6DJ2SL6Dw22zaeSW1j9hGt9/S3L15VKqhDxu0BJPdt1utkniTOJSboYL7a+qL5bZyHVlYl2WbU4XFhFbKATl+NGSOtr6HJEY5tOHQhSO+PU u1ewDipDjCsepbwOCU54ri5ZDHTJpOywBN/OkqqXOylVjrfz9P/ZlOZpRPvYVNpzqk7IpS2QY0sJslfk0fqR1yKQ4rsqg50+xa0CquGl1oDGg6GpqPtanbN/
Content-Type: multipart/alternative; boundary="------------e74154BjVJNPB5ZdUEynj7rA"
Message-ID: <d66bdffa-2b1a-42a4-9edf-c93dead56f45@iotconsultancy.nl>
Date: Wed, 22 Oct 2025 13:24:51 +0200
MIME-Version: 1.0
Content-Language: en-US
To: ace@ietf.org, Mališa Vučinić <malisa.vucinic@inria.fr>
From: Esko Dijk <esko.dijk@iotconsultancy.nl>
Organization: IoTconsultancy.nl
X-Spampanel-Class: ham
Message-ID-Hash: BBC7HRXBJFVVQNXKL35GYJIMQ3FUPEEF
X-Message-ID-Hash: BBC7HRXBJFVVQNXKL35GYJIMQ3FUPEEF
X-MailFrom: esko.dijk@iotconsultancy.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ace.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore
List-Id: "Authentication and Authorization for Constrained Environments (ace)" <ace.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/KqUzY2QMHLWXO24MRp6ePcB2RK0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Owner: <mailto:ace-owner@ietf.org>
List-Post: <mailto:ace@ietf.org>
List-Subscribe: <mailto:ace-join@ietf.org>
List-Unsubscribe: <mailto:ace-leave@ietf.org>
Hi all, Based on my previous review of -05 (see https://mailarchive.ietf.org/arch/msg/ace/I70MHcCzSfPIy28lDqxEOcllgJw/) I did a new review of -09, to see if the issues are addressed. I think they all are now - thanks for putting in this extra work! Looking at the -09 version, two new comments came up: - Format of the CoAP discovery example needs fixing; and can be optimized in size; and could be written more clearly. See https://github.com/ace-wg/est-oscore/issues/112 - Is the "bag of certificates" response for /crts mandatory, or not? In case a single cert if allowed also I would expect to see this more clearly explained in the 4.2.1 text. But maybe it's not allowed (in which case some other updates are needed.) See https://github.com/ace-wg/est-oscore/issues/113 best regards Esko -- *IoTconsultancy.nl* | Email/Teams: esko.dijk@iotconsultancy.nl | +31 6 2385 8339
- [Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore Esko Dijk
- [Ace] WGLC for draft-ietf-ace-coap-est-oscore Tim Hollebeek
- [Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore Marco Tiloca
- [Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore Mališa Vučinić
- [Ace] Re: WGLC for draft-ietf-ace-coap-est-oscore Mališa Vučinić